Vulnerability Name CVE Severity
ColdFusion JNDI injection RCE CVE-2018-15957
ColdFusion User-Agent cross-site scripting CVE-2007-0817
Configuration file disclosure
Configuration file source code disclosure
Core dump file
CORS (Cross-Origin Resource Sharing) origin validation failure
CouchDB REST API publicly accessible
Cross-site scripting vulnerability in Google Web Toolkit CVE-2012-4563
Cross-site scripting vulnerability in Google Web Toolkit (CVE-2012-5920) CVE-2012-5920
Cross-site scripting vulnerability in Open Flash Chart CVE-2013-1636
Cross site scripting
Cross site scripting in HTTP-01 ACME challenge implementation
Cross site scripting vulnerability in clipboard.swf
Cross site scripting vulnerability in flowplayer SWF CVE-2013-7342
Cross site scripting vulnerability in jPlayer SWF CVE-2013-2023
Cross site scripting vulnerability in JW Player SWF CVE-2012-3351
Cross site scripting vulnerability in SimpleViewer
Cross site scripting vulnerability in Uploadify SWF
Cross site scripting vulnerability in ZeroClipboard.swf
CVS web repository
Data Binding Expression Vulnerability in Spring Web Flow CVE-2017-4971
Debian OpenSSL predictable random number generator (SSH) CVE-2008-0166
Debian OpenSSL predictable random number generator (SSL) CVE-2008-0166
Deserialization of Untrusted Data (Java JSON Deserialization)
Deserialization of Untrusted Data (Java JSON Deserialization)
Deserialization of Untrusted Data (Java JSON Deserialization)
Deserialization of Untrusted Data (Java JSON Deserialization)
Deserialization of Untrusted Data (Java Object Deserialization)
Devise weak password
Directory traversal
Directory Traversal (lib/translation.functions.php) (CMS Made Simple) CVE-2010-2797
Directory Traversal (lib/translation.functions.php) (CMS Made Simple) CVE-2010-2797
Directory traversal in Spring framework CVE-2014-3625
DNS cache poisoning CVE-2008-1447
DNS zone transfer CVE-1999-0532
Docker Engine API is accessible without authentication
Docker Registry API is accessible without authentication
DOM-based cross site scripting
Dotenv .env file
DotNetNuke multiple vulnerabilities CVE-2012-1030
Drupal 7 arbitrary PHP code execution and information disclosure CVE-2012-4553 CVE-2012-4554
Drupal Backup Migrate directory publicly accessible
Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.1) CVE-2005-0682
Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.5) CVE-2005-3973
Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.7) CVE-2006-1226
Drupal Core 4.5.x Mail Header Injection (4.5.0 - 4.5.7)
Drupal Core 4.5.x Multiple Vulnerabilities (4.5.0 - 4.5.5)
Drupal Core 4.5.x Security Bypass (4.5.0 - 4.5.7)
Drupal Core 4.5.x Session Fixation (4.5.0 - 4.5.7)
Drupal Core 4.6.x Arbitrary Code Execution (4.6.0 - 4.6.6) CVE-2006-2743
Drupal Core 4.6.x Arbitrary Code Execution (4.6.0 - 4.6.7) CVE-2006-2831
Drupal Core 4.6.x Cross-Site Request Forgery (4.6.0 - 4.6.9) CVE-2006-5476
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.3) CVE-2005-3973
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.5) CVE-2006-1226
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.7) CVE-2006-2833
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.8) CVE-2006-4002
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.10) CVE-2007-0136
Drupal Core 4.6.x Denial of Service (4.6.0 - 4.6.10) CVE-2007-0124
Drupal Core 4.6.x Form Action Attribute Injection (4.6.0 - 4.6.9) CVE-2006-5477
Drupal Core 4.6.x Mail Header Injection (4.6.0 - 4.6.5)
Drupal Core 4.6.x Multiple Cross-Site Scripting Vulnerabilities (4.6.0 - 4.6.9) CVE-2006-5475
Drupal Core 4.6.x Multiple Vulnerabilities (4.6.0 - 4.6.3)
Drupal Core 4.6.x Security Bypass (4.6.0 - 4.6.3) CVE-2005-3974
Drupal Core 4.6.x Security Bypass (4.6.0 - 4.6.5)
Drupal Core 4.6.x Session Fixation (4.6.0 - 4.6.5)
Drupal Core 4.6.x SQL Injection (4.6.0 - 4.6.6) CVE-2006-2742
Drupal Core 4.7.x Arbitrary Code Execution (4.7.0 - 4.7.0) CVE-2006-2743
Drupal Core 4.7.x Arbitrary Code Execution (4.7.0 - 4.7.5) CVE-2007-0626
Drupal Core 4.7.x Cross-Site Request Forgery (4.7.0 - 4.7.3) CVE-2006-5476
Drupal Core 4.7.x Cross-Site Request Forgery (4.7.0 - 4.7.10) CVE-2008-0272
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.1) CVE-2006-2833
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.2) CVE-2006-4002
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.4) CVE-2007-0136
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.7) CVE-2007-5596
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.10) CVE-2008-0273